A number of python jobs to automate the creation and manipulation of AWS security groups It takes an input of a csv file in the attached format and produces the neccessary cloudformation stack to generate the security groups and their rules.
- Create security groups using the attached security group creation csv (you'll need to fill in Security Group Name, Description and your VPC name reference)
- Create Ingress rules (if using inter VPC or VPC peering this can be a security group name, if using Transit Gateway, the values will need to be CIDR ranges)
- Create Egress rules (if using inter VPC or VPC peering this can be a security group name, if using Transit Gateway, the values will need to be CIDR ranges)
- Fill in this CSV to map instance names (based on instance_role tag) to security groups.
The example CSVs I've included are for quite a complex deployment to give you a better idea of how it all works